Re: Radius experience... was Re: [Serusers] "Best practice" document

21 Feb 2005

Greger V. Teigre wrote:

...
     BTW, makes me recall another thing we have seen:
Some UAs actually do 
 two auths against the DB every time a registration arrives. Once for the 
 first INVITE (which receives an "auth required") and then another time 
 with a new nonce.  I think it has something to do with the UA including 
 the old credentials in the first INVITE even though the nonce has 
 expired and an auth must be done to verify that the credentials are 
 incorrect.  Have you seen this behavior?
 g-) 
Yes, I've seen this once but can't remember which client it was. IMO it 
is a good idea to include the credentials (from the last nonce) in all 
requests. If the nonce is still valid, this avoids the second request 
with the credentials. On the other hand, it increases traffic on the 
authentication servers. Don't know whats better :-)

regards,
klaus

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

2003

2002

Re: Radius experience... was Re: [Serusers] "Best practice" document